JP2018018211A - Information processing device and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To reduce a load in controlling the propriety of a requested operation to data in comparison with a case where a group including a plurality of users as a permission target permitted to operate the data is set.SOLUTION: A document management device 100 includes: a related user information generation part 114 for acquiring a relation between users by an operation history of a user to data stored in a document data storage part 113; and an access authority determination part 115 for setting an operable user to specific data stored in the document data storage part 113 in the acquired relation between the users.SELECTED DRAWING: Figure 3

Description

  The present invention relates to an information processing apparatus and a program.

  For example, in Patent Document 1, in a content sharing system that enables sharing of content among a plurality of users, the user relationship information on the user's electronic address book and social media is managed, and playback for a predetermined number of people is performed. The content purchase with the right is received from the user, the right to play the content is notified to the other user based on the user relationship information, and the reproduction of the content is permitted to the other users or less according to the notification of the right to play. A content sharing system is disclosed.

JP 2014-143602 A

When a plurality of users can access (manipulate) data, access control to the data may be performed. In such access control, for example, setting a group including a plurality of users is widely implemented as a permission target for which an operation on data is permitted. However, for example, when multiple organizations are involved in the exchange of data or when the person in charge changes frequently, it is important for the setter to set the group so that the authorized users are covered. The burden is heavy.
The present invention reduces the burden when controlling whether or not a requested operation is performed on data, as compared with the case where a group including a plurality of users is set as a permission target for which an operation on data is permitted. With the goal.

According to the first aspect of the present invention, the storage unit acquires the relationship between users based on the user's operation history with respect to the data stored in the storage unit, and the acquired relationship between the users. The information processing apparatus includes setting means for setting a user who can operate the stored specific data.
The invention according to claim 2 is characterized in that the setting means sets a user related to a reference user predetermined in the specific data as a user who can operate the specific data. The information processing apparatus according to claim 1.
According to a third aspect of the present invention, the acquisition means is configured such that the first user and the second user operate the first data, and the third user operates the second data operated by the second user. When the operation is performed, information indicating that the first user, the second user, and the third user are related is acquired as the relationship between the users. Information processing apparatus.
The invention according to claim 4 is characterized in that the acquisition means acquires the relation between the users by excluding the operation history of browsing the data from the operation history. Information processing apparatus.
According to a fifth aspect of the present invention, a confidentiality level indicating a degree of confidentiality is determined for each data in the data stored in the storage unit, and the acquisition unit includes the confidentiality level in the operation history. The information processing apparatus according to claim 1, wherein a relationship between the users is acquired using an operation history for data satisfying a predetermined condition.
According to a sixth aspect of the present invention, the acquisition means uses the operation history for the data in which the number of users who have performed an operation is not more than a predetermined threshold among the operation histories, The information processing apparatus according to claim 1, wherein a relationship is acquired.
The invention according to claim 7 is characterized in that the acquisition means acquires the relationship between the users by using an operation history of operations performed within a predetermined period of the operation history. The information processing apparatus according to claim 1.
The invention according to claim 8 stores the first data and the first user who operates the first data in association with each other, and stores the first data and the second user who operates the second data. And a storage means for storing the second user in association with each other, and the user who has operated the second data associated with the first user as a user operable with the first data. An information processing apparatus comprising setting means for setting a second user.
The invention according to claim 9 is a function of acquiring a relationship between users based on a user operation history with respect to data stored in a storage unit in a computer, and the storage based on the acquired relationship between users. This is a program for realizing a function of setting a user who can operate on specific data stored in the section.

According to the first aspect of the present invention, compared with the case where a group including a plurality of users is set as an object to be permitted for operations on data, the control of whether or not the requested operation is performed on the data is performed. Can be reduced.
According to the second aspect of the present invention, it becomes possible to permit data manipulation to a user related to the reference user.
According to the third aspect of the present invention, it is possible to exchange information directly between users who have not exchanged information directly through the same document in the past.
According to the fourth aspect of the present invention, it is possible to prevent an unreliable user from performing an operation on the data as compared with a case where the browsing operation history is not excluded.
According to the fifth aspect of the present invention, it is possible to prevent an unreliable user from performing an operation on data, as compared to a case where the confidentiality is not set for each document.
According to the sixth aspect of the present invention, it is possible to prevent an unreliable user from performing an operation on data as compared with a case where the number of users who have performed an operation is not taken into consideration.
According to the seventh aspect of the present invention, it is possible to prevent an unreliable user from performing an operation on data as compared with a case where the date and time when the operation is performed is not taken into consideration.
According to the eighth aspect of the present invention, when controlling whether or not a requested operation is performed on data, compared to a case where a group including a plurality of users is set as a permission target for which an operation on data is permitted. Can be reduced.
According to the ninth aspect of the present invention, when controlling whether or not a requested operation can be performed on data, compared to a case where a group including a plurality of users is set as a permission target for which an operation on data is permitted. A function that reduces the burden on the computer can be realized by a computer.

It is the figure which showed the example of whole structure of the document management system concerning this Embodiment. It is a figure which shows the hardware structural example of the document management apparatus which concerns on this Embodiment. It is the block diagram which showed the function structural example of the document management apparatus which concerns on this Embodiment. An example of the operation history recorded in the operation history recording unit is shown. An example of the related user information generated based on the operation history shown in FIG. 4 is shown. (A)-(c) is a figure for demonstrating the other example of the related user information produced | generated based on the operation log | history shown in FIG. 10 is a flowchart illustrating an example of a processing procedure performed when the document management apparatus receives an operation request. (A)-(c) is a figure for demonstrating the modification 1 of the process which produces | generates related user information. (A)-(c) is a figure for demonstrating the modification 2 of the process which produces | generates related user information. (A)-(c) is a figure for demonstrating the modification 3 of the process which produces | generates related user information. (A)-(c) is a figure for demonstrating the modification 4 of the process which produces | generates related user information.

Embodiments of the present invention will be described below in detail with reference to the accompanying drawings.
<Overall configuration of document management system>
First, the overall configuration of the document management system 1 according to the present embodiment will be described. FIG. 1 is a diagram showing an example of the overall configuration of a document management system 1 according to the present embodiment. As shown in the figure, the document management system 1 is configured by connecting a document management apparatus 100 and terminal apparatuses 200 a to 200 c via a network 300.
In FIG. 1, the terminal devices 200 a to 200 c are shown. However, when there is no need to distinguish them, they are referred to as the terminal device 200. 1 shows only three terminal devices 200, four or more terminal devices 200 may be provided.

  A document management apparatus 100 as an example of an information processing apparatus is a computer apparatus that manages document data to be operated by the terminal apparatus 200. An example of the document management apparatus 100 is a PC (Personal Computer) such as a server apparatus. The document management apparatus 100 accepts operation requests such as creation (addition), browsing, and editing of document data from the terminal device 200 operated by the user. Then, the document management apparatus 100 determines whether or not the accepted operation request is permitted.

  Here, as will be described in detail later, the document management apparatus 100 generates information indicating the relationship between users (hereinafter referred to as related user information) based on the operation history of the document data by the user. Based on the generated related user information, the document management apparatus 100 is a user who can operate the document data that is the target of the operation request, in other words, a user who is permitted to operate the document data (hereinafter referred to as a permitted user). To determine whether or not the accepted operation request is permitted.

  The terminal device 200 is a computer device operated by a user. Examples of the terminal device 200 include a PC and a mobile terminal. The terminal device 200 requests, for example, operations such as creation (addition) of a file held in the document management device 100, acquisition, editing, and browsing of the held file in accordance with a user operation input.

  The network 300 is a communication unit used for information communication between the document management apparatus 100 and the terminal apparatus 200, and is, for example, the Internet, a public line, a LAN (Local Area Network), or the like.

<Hardware configuration of document management device>
Next, a hardware configuration of the document management apparatus 100 according to the present embodiment will be described. FIG. 2 is a diagram illustrating a hardware configuration example of the document management apparatus 100 according to the present embodiment. As shown in the figure, the document management apparatus 100 includes a CPU (Central Processing Unit) 101 that is a calculation means, a main memory 102 that is a storage means, and a magnetic disk device 103.

Here, the CPU 101 executes various programs such as an OS (Operating System) and applications to realize various functions of the document management apparatus 100. The main memory 102 is a storage area for storing various programs and data used for execution thereof. The magnetic disk device 103 is a storage area for storing input data for various programs, output data from various programs, and the like.
Further, the document management apparatus 100 includes a communication interface (communication I / F) 104 for performing communication with the outside, a display mechanism 105 including a video memory and a display, and an input device 106 such as a keyboard and a mouse. .

<Functional configuration of document management device>
Next, a functional configuration of the document management apparatus 100 according to the present embodiment will be described. FIG. 3 is a block diagram illustrating a functional configuration example of the document management apparatus 100 according to the present embodiment.
The document management apparatus 100 includes an accepting unit 111 that accepts an operation request from the terminal device 200, an operation history recording unit 112 that records an operation history for document data, and document data that stores document data to be operated by the terminal device 200. A storage unit 113 and a related user information generation unit 114 that generates related user information based on the operation history are provided. In addition, the document management apparatus 100 stores an access authority determination unit 115 that determines whether or not to accept an operation received from the terminal apparatus 200, and an access that stores whether or not to perform determination processing using related user information. An authority setting storage unit 116 and an operation execution unit 117 that executes an operation requested from the terminal device 200 are provided.

  The accepting unit 111 accepts an operation request from the terminal device 200. The operation request received here is, for example, a request for operations such as creation (addition), browsing, and editing of document data as described above. More specifically, the operation request includes a request for creating (adding) new document data to the document data storage unit 113 and a request for operating the document data stored in the document data storage unit 113. .

  An operation history recording unit 112 as an example of a storage unit records a user's operation history for document data. The operation history recorded here is a history of operations actually performed on the document data by the terminal device 200. More specifically, when an operation request is received from the terminal device 200 and the requested operation is actually performed, the operation content is recorded in the operation history recording unit 112 as an operation history.

  In the operation history, the document data on which the operation has been performed and the information on the user who has performed the operation are recorded in association with each other. The user information is, for example, a user account name that is input when the user accesses the document management apparatus 100 from the terminal device 200. However, the user information may be information for identifying the user. For example, information such as a user name, a computer name, and an IP (Internet Protocol) address set in the terminal device 200 operated by the user may be used. It may be used.

  The document data storage unit 113 as an example of a storage unit stores document data to be operated by the terminal device 200. In the document data storage unit 113, a file transmitted from the terminal device 200 (that is, a file added by the terminal device 200) is stored, and the stored file is, for example, a record such as a CD-ROM. Document data stored in a medium and provided may be included.

  The related user information generation unit 114 as an example of an acquisition unit generates related user information indicating the relationship between users based on the operation history recorded in the operation history recording unit 112. Details of the related user information will be described later.

  The access authority determination unit 115 as an example of a setting unit determines whether or not to perform a determination process using related user information (hereinafter referred to as a related user determination process) when an operation request is received from the terminal device 200. To do. When the access authority determination unit 115 determines to perform the related user determination process, the access authority determination unit 115 permits the operation request received from the terminal device 200 based on the related user information generated by the related user information generation unit 114. It is determined whether or not to do.

More specifically, the access authority determination unit 115 determines other users related to the administrator of the document data requested for operation based on the related user information generated by the related user information generation unit 114. Extract (set) as permitted users. If the extracted user to be permitted includes the user who made the operation request, the access authority determination unit 115 permits the operation request, in other words, grants the access authority to the user. Decide what to do.
Here, examples of the document data manager include a user who created the document data, a user who owns the document data, and a user set as a person in charge of document management in the organization. In the present embodiment, the administrator of document data is used as an example of a reference user predetermined for specific data.

  Whether or not to perform the related user determination process is determined based on the setting of the access authority setting storage unit 116. As will be described later, the access authority setting storage unit 116 is set to determine whether or not to perform related user determination processing (hereinafter referred to as related user determination presence / absence setting). The access authority determination unit 115 determines whether or not to perform related user determination processing based on the related user determination presence / absence setting. When the related user determination process is not performed (that is, when the related user determination presence / absence setting is set to “none”), the access authority determination unit 115 performs the terminal by other determination processes that do not use the related user information. It is determined whether or not the operation request received from the device 200 is permitted.

  The access authority setting storage unit 116 stores the related user determination presence / absence setting. This related user determination presence / absence setting can be changed by the user. Further, the related user determination presence / absence setting can be set for the entire document management system 1, or can be set for each folder as a set of document data or for each individual document data. Furthermore, the related user determination presence / absence setting can be set according to the type of operation requested for the document data. For example, in the present embodiment, regarding the request to add document data to the document data storage unit 113, the related user determination presence / absence setting is set to “none”. For this reason, when a request for adding document data is made, the related user determination process is not used, such as whether or not the user (user account name) who made the request has been given the authority to add document data in advance. Other determination processing is performed.

  The operation execution unit 117 executes processing related to document data based on an operation requested from the terminal device 200 and permitted. For example, when browsing the document data is requested from the terminal device 200 and the request is permitted, the operation execution unit 117 sets the document data in a browsable state. Further, for example, when the terminal device 200 is requested to edit the document data and the request is permitted, the operation execution unit 117 edits the document data based on the content of the operation. The history of operations executed by the operation execution unit 117 is recorded in the operation history recording unit 112.

  Note that each functional unit constituting the document management apparatus 100 shown in FIG. 3 is realized by cooperation of software and hardware resources. Specifically, the CPU 101 reads a program that realizes the reception unit 111, the related user information generation unit 114, the access authority determination unit 115, the operation execution unit 117, and the like from, for example, the magnetic disk device 103 to the main memory 102 and executes it. Thus, these functional units are realized. The operation history recording unit 112, the document data storage unit 113, and the access authority setting storage unit 116 are realized by the magnetic disk device 103, for example.

<Description of related user information generation processing>
Next, a process in which the related user information generation unit 114 generates related user information will be described with reference to FIGS.

First, FIG. 4 shows an example of an operation history recorded in the operation history recording unit 112.
Here, the “target document” indicates document data that has been actually operated. “Operating user” indicates a user who operated the target document (for example, a user account name). “Operation” indicates the content of the operation performed on the target document.
Specifically, the operation history shown in FIG. 4 records operations for three target documents, document α, document β, and document γ. For example, with respect to the document α, it is recorded that the user A performs the creation (addition to the document data storage unit 113), the user B performs the browsing operation, and the user C performs the editing operation. .

  Next, FIG. 5 shows an example of related user information generated based on the operation history shown in FIG. Here, other users related to each user (each target user) are extracted as related users.

For example, a case where a related user related to the user B is extracted will be described. For other users than user B, related users are extracted in the same procedure.
In the operation history shown in FIG. 4, the target documents operated by the user B are two documents α and β. In this case, other users who have operated the document α and other users who have operated the document β are extracted as related users related to the user B. Specifically, user A and user C are extracted as other users who have operated the document α. Further, the user D is extracted as another user who has performed an operation on the document β. As a result, as shown in FIG. 5, there are three related users of user B, user A, user C, and user D.
Thus, the related user information generation unit 114 extracts the related users of each user based on the operation history recorded in the operation history recording unit 112, and generates related user information.

  In the example illustrated in FIG. 5, another user who has operated the same document as the document that the user B has operated in the past is extracted as the related user of the user B. Further, another user related to the related user extracted here may be added as the related user of user B.

  6A to 6C are diagrams for explaining another example of related user information generated based on the operation history shown in FIG. Here, although it demonstrates as what extracts the related user of user B, a related user is extracted in the same procedure also about other users other than user B.

First, in the example illustrated in FIG. 5, there are three related users of user B, user A, user C, and user D. On the other hand, in the example illustrated in FIG. 6, another user related to the three users (that is, user A, user C, and user D) is further added as a related user of user B.
Specifically, as shown in FIG. 6A, users related to user A, user C, and user D are extracted. Here, as shown in the related user information in FIG. 5, the related users of the user A are the user B and the user C. Related users of user C are user A, user B, and user E. The related user of user D is user B. Based on these results, the three related users, user A, user C, and user D, are summarized into four users, user A, user B, user C, and user E, as shown in FIG. Become.

  Then, the remaining users excluding the user B who is the user from the related users A, B, C, and E shown in FIG. 6B are added to the related users of the user B shown in FIG. The As a result, as shown in FIG. 6C, the related user (related user information) of the user B is extracted. Here, when the related user of user B shown in FIG. 5 and the related user of user B shown in FIG. 6C are compared, user E is newly added to the user shown in FIG. There are four related users, user A, user C, user D, and user E.

<Description of related user determination processing>
Next, related user determination processing by the access authority determination unit 115 will be described. Here, a description will be given on the assumption that the user A can perform browsing of the document X managed by the user B.

First, the access authority determination unit 115 collects the relationship between the administrator of the document X (that is, the user B) and another user for the document X that is document data for which browsing operation is requested. Here, the access authority determining unit 115 extracts a related user related to the user B from the related user information generated by the related user information generating unit 114.
Specifically, for example, when the related user information shown in FIG. 5 is used, three users of user A, user C, and user D are related users of user B. Therefore, the access authority determination unit 115 extracts these three users as permission target users. As a result, since the user A who has made the browsing request is included in the permission target users, the access authority determination unit 115 determines to permit the user A to browse the document X.

  For example, when the related user information shown in FIG. 6C is used, four users, user A, user C, user D, and user E, are related users of user B. Therefore, the access authority determination unit 115 extracts these four users as permission target users. As a result, since the user A who has made the browsing request is included in the permission target users, the access authority determination unit 115 determines to permit the user A to browse the document X.

  As described above, the access authority determining unit 115 extracts other users who are related to the administrator of the document data whose operation is requested, as permitted users based on the generated related user information. Then, the access authority determination unit 115 determines to permit the operation request if the extracted user to be permitted includes the user who performed the operation request. That is, in the present embodiment, whether or not an operation on data is determined based on the relationship between users acquired from the operation history, for example, a plurality of users are included as permitted targets for operations on data. Compared to the case of setting a group, the burden on the user when controlling the operation availability is reduced.

  In addition, in the related user information shown in FIG. 5, the related user is extracted by tracing the related user once with the administrator of the document data as a starting point. By setting the related user extracted in this way as a permission target user, a user who has operated the same document data in the past is extracted as a related user, and the operation is permitted.

In the related user information shown in FIG. 6C, the related user is extracted by tracing the related user twice with the document data manager as the starting point. By setting the related user extracted in this way as a permission target user, for example, a user who has not operated the same document data in the past, such as user B and user E shown in FIG. Even if there is an indirect exchange of information, the operation is permitted. For example, even if users who belong to the same department do not exchange information directly in the past, they are extracted as related users by exchanging information even indirectly. As a result, access authority is given to document data that has been operated in the past, and it becomes easy to exchange information directly between users.
In the present embodiment, the related users may be extracted by following the related users three or more times starting from the document data manager.

<Processing procedure of document management apparatus>
Next, a process procedure performed when the document management apparatus 100 receives an operation request will be described. FIG. 7 is a flowchart illustrating an example of a processing procedure performed when the document management apparatus 100 receives an operation request.

  First, when the reception unit 111 receives an operation request from the terminal device 200, the access authority determination unit 115 determines whether or not to perform related user determination processing (step 101). Here, the access authority determination unit 115 acquires information on the related user determination presence / absence setting by the access authority setting storage unit 116, and determines whether or not to perform the related user determination process. If an affirmative determination (Yes) is made in step 101, the process proceeds to step 102 described later.

  On the other hand, when a negative determination (No) is made in step 101, the access authority determination unit 115 executes another determination process that does not use the related user information (step 103). Here, it is determined whether or not the accepted operation is permitted by another determination process. When the accepted operation is permitted, the operation execution unit 117 performs processing based on the requested operation. In addition, when the accepted operation is rejected, processing based on the requested operation is not performed. Then, this processing flow ends.

  After an affirmative determination (Yes) in step 101, in step 102, the related user information generation unit 114 generates related user information based on the operation history recorded in the operation history recording unit 112 (step 1). 102). Here, related user information as shown in FIGS. 5 and 6C is generated. Next, the access authority determination unit 115 extracts a user to be authorized for the administrator of the document data requested to be operated based on the generated related user information (step 104). Here, the related user of the manager is extracted as the permission target user.

  Next, the access authority determination unit 115 determines whether or not the extracted user to be permitted includes the user who made the operation request (step 105). When a positive determination (Yes) is made in step 105, the access authority determination unit 115 determines to permit the operation request (step 106). Then, the operation execution unit 117 performs processing based on the requested operation, and this processing flow ends. On the other hand, when a negative determination (No) is made in step 105, the access authority determination unit 115 determines to reject the operation request (step 107). In this case, processing based on the requested operation is not performed, and this processing flow ends.

<Modification 1 of related user information generation processing>
Next, Modification 1 of the process for generating the related user information will be described. In the first modification, the related user information generation unit 114 excludes the browsing operation history from the operation history recorded in the operation history recording unit 112 when generating the related user information based on the operation history. Only the remaining operation history is adopted. FIGS. 8A to 8C are diagrams for explaining a first modification of the process of generating the related user information.

  FIG. 8A is a diagram illustrating an example of an operation history recorded in the operation history recording unit 112. When the operation history shown in FIG. 8A is recorded, for example, when a browsing request is made to the document Y managed by the user B by the user A, and a related user related to the user B is extracted. Will be described. In the following, a case will be described in which the user B who is the administrator of the document data is traced once as a starting point, but in the first modification as well, as described above, the user who is related is twice. The related users may be extracted by following the above. For other users than user B, related users are extracted in the same procedure.

First, for the document Y, the access authority setting storage unit 116 sets in advance the related user determination process by excluding the “viewing” operation history.
Next, when a browsing request for the document Y is made, the related user information generation unit 114 excludes “browsing” from the operations of “creation”, “browsing”, and “editing”, and performs “creation”. The related users are extracted using the operation history of “edit”. Specifically, as illustrated in FIG. 8B, the operation history of “viewing” of the user B with respect to the document α and the operation history of “viewing” of the user D with respect to the document β are excluded.

  If the “viewing” operation history is excluded as shown in FIG. 8B, the target document operated by the user B is only the document β. Further, since the operation history of the “browsing” of the user D with respect to the document β is excluded, there is no user other than the user B who has operated the document β. As a result, as shown in FIG. 8C, there is no related user of user B, and no user is extracted. That is, when the user B who is the manager of the document Y is set as a starting point, the related user is not extracted. Therefore, the user A is not included in the permission target user, and the browsing request by the user A is rejected.

  Thus, in the first modification, related users are extracted by excluding the browsing operation history. Here, when a user who has only viewed a document (for example, document α) is compared with a user who has edited the document α, the user who has only viewed the document α is related to the document α. However, it can be considered that the reliability as a user is low. Therefore, in the first modification, a user who has only browsed is not extracted as a related user, but a user who has edited the same document is extracted as a related user. By extracting related users in this way, for example, compared with the case where the browsing operation history is not excluded, it is suppressed to give access authority to unreliable users, and to more reliable users Access authority will be granted to them.

<Modification 2 of related user information generation processing>
Next, a second modification of the process for generating related user information will be described. In the second modification, the confidentiality can be set for the document data. When the related user information generation unit 114 generates the related user information based on the operation history, the related user information generation unit 114 performs filtering using the confidentiality, and adopts only the operation history of the document data in which the confidentiality satisfies a predetermined condition. . FIGS. 9A to 9C are diagrams for describing a second modification of the process of generating the related user information.

  FIG. 9A is a diagram illustrating an example of an operation history recorded in the operation history recording unit 112. As shown in the figure, the confidentiality is set for each document data. This confidentiality indicates the degree of confidentiality of the document data, and is set by the creator when the document data is created, for example. In the illustrated example, the sensitivity of the document α is set to “1”, the sensitivity of the document β is set to “3”, and the sensitivity of the document γ is set to “2”.

In the example shown in FIG. 9A, the higher the confidentiality, the more important document data that needs to be kept secret. That is, among the three documents, the document β has the highest confidentiality. More specifically, for example, the confidentiality “1” is set for document data with low confidentiality that is disclosed to the public. For example, the confidentiality “3” is set for important document data with high confidentiality that can be disclosed only to limited users in the organization.
However, as shown in the example, the higher the confidentiality and the higher the importance, the higher the confidentiality value, the higher the confidentiality value, the lower the confidentiality and the higher the importance. good.

  Here, when the operation history shown in FIG. 9A is recorded, for example, a browsing request is made to the document Y managed by the user B by the user A, and a related user related to the user B is selected. The case of extracting will be described. In the following, a case will be described in which the user B who is the administrator of the document data is traced once as a starting point, but also in the second modification, as described above, the user who is related is twice. The related users may be extracted by following the above. For other users than user B, related users are extracted in the same procedure.

  First, for the document Y, the access authority setting storage unit 116 sets in advance the related user determination process using the operation history of the document data satisfying a predetermined confidentiality condition. Here, as a predetermined condition, for example, a condition that “the sensitivity is 2 or more” is set.

  Next, when a browsing request is made for the document Y, the related user information generation unit 114 extracts a related user using an operation history of document data having a confidentiality of 2 or more. Specifically, as shown in FIG. 9B, the operation history of the document α is excluded, and the operation history of the document β and the operation history of the document γ are used. Here, the target document operated by the user B is only the document β. As a result, only the user D is extracted as the related user of the user B as shown in FIG. Therefore, the user A is not included in the permission target user, and the browsing request by the user A is rejected. Here, the confidentiality is set for all three document data, but the confidentiality is set to “0” for the document data for which the confidentiality is not set.

  As described above, in the second modification, related users are extracted using the operation history of document data whose sensitivity satisfies a predetermined condition. Therefore, for example, by extracting the related users only to users who can access important document data that is confidential to a certain level or more, for example, compared with the case where confidentiality is not set for each document data Thus, granting access authority to untrusted users is suppressed, and access authority is granted to more reliable users.

<Modification 3 of related user information generation processing>
Next, a third modification of the process for generating related user information will be described. In the third modification example, when the related user information generation unit 114 generates the related user information based on the operation history, the number of users who have operated the document data (that is, the number of operation users) is a certain number or less. Only the operation history of document data is adopted. FIGS. 10A to 10C are diagrams for describing a third modification of the process of generating the related user information.

  FIG. 10A is a diagram illustrating an example of an operation history recorded in the operation history recording unit 112. Here, the number of operation users of the document α is 3, the number of operation users of the document β is 2, and the number of operation users of the document γ is 2. When the operation history shown in FIG. 10A is recorded, for example, when a browsing request is made for the document Y managed by the user B by the user A, and related users related to the user B are extracted. Will be described. In the following, a case will be described in which the user B who is the administrator of the document data is traced once as a starting point, but also in the third modification example, as described above, the user who is related is twice. The related users may be extracted by following the above. For other users than user B, related users are extracted in the same procedure.

  First, for the document Y, the access authority setting storage unit 116 sets in advance a related user determination process using an operation history of document data whose number of operating users is equal to or less than a predetermined threshold. For example, “2” is set as the predetermined threshold. In this case, an operation history of document data having two or less operating users is used. In other words, the case where the number of operating users is “2” indicates a case where the users exchange one-on-one via the document data.

  Next, when a browsing request for the document Y is made, the related user information generation unit 114 extracts a related user using an operation history having two or less operating users. Specifically, as shown in FIG. 10B, the operation history of the document α is excluded, and the operation history of the document β and the operation history of the document γ are used. Here, the target document operated by the user B is only the document β. As a result, only the user D is extracted as the related user of the user B as shown in FIG. Therefore, the user A is not included in the permission target user, and the browsing request by the user A is rejected.

  As described above, in Modification 3, related users are extracted using the operation history of document data in which the number of operating users is a predetermined number or less. As the number of document data operating users increases, the document data is released to a wider range, and the possibility that untrustworthy users are included in the document data operating users increases. Therefore, in the third modification, users who have operated on widely-disclosed document data are not extracted as related users, and are limited to users who have operated on document data having a certain number of operating users or less. And related users are extracted. By extracting related users in this way, for example, compared with the case where the number of operating users is not considered, it is suppressed to give access authority to unreliable users, and for more reliable users Access authority is granted.

<Modification 4 of related user information generation processing>
Next, a fourth modification of the process for generating the related user information will be described. In the modified example 4, when the related user information generation unit 114 generates the related user information based on the operation history, the related user information generation unit 114 determines a predetermined period (predetermined from the operation history recorded in the operation history recording unit 112). Only the operation history of operations performed during the same period) is adopted. FIGS. 11A to 11C are diagrams for describing a fourth modification of the process of generating the related user information.

  FIG. 11A is a diagram illustrating an example of an operation history recorded in the operation history recording unit 112. As illustrated, for each operation, information on the date and time when the operation was performed is recorded. When the operation history shown in FIG. 11A is recorded, for example, when a browsing request is made for the document Y managed by the user B by the user A, and related users related to the user B are extracted. Will be described. In the following, a case will be described in which the user B who is the administrator of the document data is traced once as a starting point, but in the fourth modification as well, as described above, the user who is related is twice. The related users may be extracted by following the above. For other users than user B, related users are extracted in the same procedure.

  First, for the document Y, the access authority setting storage unit 116 is set in advance to perform related user determination processing using an operation history of operations performed within a specific period. In the example illustrated in FIG. 11, a case where a period of a specific year (here, 2016) is set as the specific period will be described. However, the specific period is not limited to the fiscal year, and for example, a period of one month after the registration of the document data, or one week after the document data manager edits may be set. In other words, such a period can be regarded as a period determined based on an operation that satisfies a predetermined condition.

  Next, when a browsing request for the document Y is made, the related user information generation unit 114 extracts a related user using an operation history of operations performed in FY2016. Specifically, as shown in FIG. 11B, the operation history of the “creation” of the user A with respect to the document α, the operation history of the “creation” of the user E with respect to the document γ, and the “edit” of the user C with respect to the document γ. The operation history of is excluded. Here, the target documents operated by the user B are the document α and the document β. As a result, user C and user D are extracted as related users of user B as shown in FIG. Therefore, the user A is not included in the permission target user, and the browsing request by the user A is rejected.

  As described above, in the fourth modification, related users are extracted using the operation history of operations performed within a specific period. By limiting the operation date and time and using the operation history, the related users are extracted based on the temporary relationship between the users. By extracting the related users in this way, for example, compared with the case of using the operation history without considering the operation date and time, it is possible to suppress granting access authority to an unreliable user, and more reliable Access authority is granted to the user.

  In the present embodiment, the related users are extracted from the document data manager as a starting point. However, the present invention is not limited to such a configuration. For example, the related users may be extracted from a user who has operated the document data as a starting point, without being limited to the administrator of the document data.

  For example, in the example illustrated in FIGS. 4 and 5, a case where the user C exists as a user who has operated the document X in the past in addition to the user B who is an administrator will be described. As shown in FIG. 5, when the related user is traced once with the administrator user B as the starting point, the user A, the user C, and the user D are extracted as related users. On the other hand, when the user C is traced once as a starting point, the user A, the user B, and the user E are extracted as the related users. As a result, the user who added the related user of user B and the related user of user C is extracted as a user to be permitted. That is, as the remaining users excluding the administrator user B, the user A, the user C, the user D, and the user E are extracted as permission target users. Here, the case where the user who has operated the document data is traced once as a starting point has been described, but the user who has operated the document data is referred to as the starting point. You may extract a related user by tracing twice or more.

  Further, in the present embodiment, the processing content for generating the related user information may be set for each document data. For example, the related user information may be generated for the document X as shown in FIG. 5 and the related user information may be generated for the document Y by the process of the first modification. Furthermore, the process for generating the related user information may be set for each type of operation requested by the user. For example, related user information may be generated for a browsing request for document X as shown in FIG. 5 and related user information may be generated for the editing request for document X by the process of the first modification.

  In the present embodiment, an example in which the operation target by the terminal device 200 is document data has been described. However, the present invention is not limited to document data. For example, the operation target may be audio data or video data. Any data (electronic data) can be used. Further, for example, a folder storing a plurality of document data may be set as an operation target.

  The program for realizing the embodiment of the present invention can be provided not only by a communication means but also by storing it in a recording medium such as a CD-ROM.

  Although the embodiments of the present invention have been described above, the technical scope of the present invention is not limited to the scope described in the above embodiments. It is clear from the description of the scope of the claims that various modifications or improvements added to the above embodiment are also included in the technical scope of the present invention.

DESCRIPTION OF SYMBOLS 100 ... Document management apparatus, 111 ... Reception part, 112 ... Operation history recording part, 113 ... Document data storage part, 114 ... Related user information generation part, 115 ... Access authority determination part, 116 ... Access authority setting storage part, 117 ... Operation execution part

Claims (9)

An acquisition means for acquiring a relationship between users according to a user's operation history with respect to data stored in the storage unit;
An information processing apparatus comprising: setting means for setting a user who can operate the specific data stored in the storage unit based on the acquired relationship between users. 2. The information processing according to claim 1, wherein the setting unit sets a user related to a reference user predetermined in the specific data as a user who can operate the specific data. apparatus. When the first user and the second user operate the first data and the third user performs the operation on the second data operated by the second user, the acquisition unit The information processing apparatus according to claim 1, wherein information indicating that the first user, the second user, and the third user are related is acquired as a relationship between the information processing apparatus and the information processing apparatus. The information processing apparatus according to claim 1, wherein the acquisition unit acquires a relationship between the users by excluding a browsing operation history for data from the operation history. Sensitivity indicating the degree of confidentiality is determined for each data in the data stored in the storage unit,
2. The information according to claim 1, wherein the acquisition unit acquires a relationship between the users by using an operation history with respect to data satisfying a predetermined condition in the operation history. Processing equipment. The acquisition means acquires the relationship between the users using an operation history with respect to data in which the number of users who have operated in the operation history is equal to or less than a predetermined threshold. The information processing apparatus according to claim 1. 2. The information processing according to claim 1, wherein the acquisition unit acquires a relationship between the users by using an operation history of operations performed within a predetermined period of the operation history. apparatus. The first data and the first user who performed the operation on the first data are stored in association with each other, and the second data and the first user and the second user who performed the operation on the second data are associated with each other. Storage means for storing;
An information processing apparatus comprising: setting means for setting the second user who has operated the second data associated with the first user as a user who can operate the first data. On the computer,
A function of acquiring a relationship between users according to a user's operation history with respect to data stored in the storage unit;
The program for implement | achieving the function which sets the user who can operate with respect to the specific data memorize | stored in the said memory | storage part based on the acquired relationship between the users.

Images